CHAPTER 10

Dealing with Incidents

Bad things happen, even to the most security-conscious organizations. As an IT security professional, you need to know how to respond to negative events. This chapter explores responses to incidents ranging from the minor (like a system crash) to the major (natural disaster wiping out the company HQ) in three modules:

•   Incident Response

•   Forensics

•   Continuity of Operations and Disaster Recovery

Module 10-1: Incident Response

This module covers the following CompTIA Security+ objective:

•   5.4 Given a scenario, follow incident response procedures

Most organizations can’t afford to wonder if an incident will ever happen to them; they need to wonder when, because negative events or incidents will happen ...

Get Mike Meyers' CompTIA Security+ Certification Guide, Second Edition (Exam SY0-501), 2nd Edition now with O’Reilly online learning.

O’Reilly members experience live online training, plus books, videos, and digital content from 200+ publishers.